Supplemental Security Audit Report

2026-02-04 13:16:47 +00:00 · 2025-12-11 15:10:49 +08:00
parent bdf6337e7b
commit 6d2fdd7392
3 changed files with 59 additions and 6 deletions
--- a/README.md
+++ b/README.md
@@ -70,6 +70,15 @@ mo optimize --whitelist      # Adjust protected optimization items
 - **Navigation**: All menus support Vim keys `h/j/k/l` in addition to arrow keys
 - **Debug**: Use `--debug` flag to see detailed logs: `mo clean --debug`

+## Security & Safety
+
+Mole is built with a **"Safety First"** philosophy. We prioritize system stability over aggressive cleaning.
+
+- **Path Validation**: All deletion operations undergo strict validation to prevent accidents.
+- **Protected Directories**: Critical system paths are hard-coded as untouchable.
+- **Conservative Cleanup**: "Orphaned" data is only removed if the app is missing AND the data has been inactive for 60+ days.
+- **Audit Report**: For a detailed technical breakdown of our safety mechanisms, read the [Security Audit Report](SECURITY_AUDIT.md).
+
 ## Features in Detail

 ### Deep System Cleanup